Many Xiaomi smartphone owners sooner or later face the desire to gain full control over their operating system. The standard shell MIUI or HyperOS, despite its functionality, often limits the capabilities of advanced users. Obtaining superuser rights, or Root rights, opens access to system files, allows you to delete undeleteable software, modify the kernel and install specialized modules.
But the process is not without risks and requires a clear understanding of each step: a wrong action can turn a device into a brick or permanently block access to banking applications. In this guide, we will discuss current methods for obtaining administrator rights on modern Redmi and Poco models, focusing on security and warranty.
So, it's important to decide on the goal: Why do you need SuperUser? If you can just change the theme, you can use standard tools, but if you're planning to deep customize the system, install Magisk, and work with ADB, it's going to be hard to go back. Next, we'll look at prerequisites and step-by-step algorithms.
Preparation of the device and necessary tools
Before you start modifying the bootloader, you need to prepare a software environment. You need a Windows computer that is working. USB-cable (preferably original) and fully charged smartphone. Lack of quality cable is a common cause of errors when transmitting data in Fastboot mode.
You need to install ADB and Fastboot drivers on your computer, without which the system will not be able to correctly recognize the phone in bootloader mode, and download the current version of the Mi Unlock Tool utility from the official website. This is the only legal way to unlock the bootloader on Xiaomi devices.
β οΈ Warning: All data on the internal drive will be destroyed during the process of unlocking the bootloader. Be sure to make a full backup of photos, contacts and documents to an external medium or to the cloud before starting work.
You also need to set up a number of settings inside your smartphone. Go to Settings β About Phone and quickly click on the MIUI version until you see the "You're a developer" sign, then activate USB Debugging and bootloader Unlock in the advanced settings. Link your Mi Account in the same menu.
βοΈ Firmware readiness
Unlocking the bootloader (Bootloader)
The key step is to unblock the bootloader. Without this step, installing a modified backup or obtaining superuser rights is impossible. Xiaomi has implemented a mandatory wait of 168 hours (7 days) after the account is linked to protect against device theft.
The process goes through the Mi Unlock utility. Launch the program on your PC, log in to your account and put your phone into Fastboot mode (pressing both the power and volume buttons on the device turned off). Connect the cable and press the Unlock button in the program.
If less than 7 days have passed since the account was linked, the utility will issue an error indicating the remaining time, in which case you will have to wait. Repeated attempts to bypass the timer can lead to an increase in the waiting time to 30 days.
What if Mi Unlock canβt see the phone?
It is worth noting that an unlocked bootloader makes the device more vulnerable to attackers who have physical access to it, and some banking applications may refuse to work, detecting a changed status of the system, but for enthusiasts it is a necessary step to freedom.
Installation of custom TWRP Recovery
You don't have to install a full-time recavery to implement administrator rights. TWRP (Team Win Recovery Project is a modified recovery menu that allows you to install ZIP-archives with patches, make full partition backups and manage the file system.
First, find the right build. TWRP It's for your CPU and smartphone model, and using the version for another device is guaranteed to cause a touchscreen or a full download lock. ADB.
Put your smartphone into Fastboot mode and connect to your PC. Open the command line in the folder with ADB and type in the command to firmware the image:
fastboot flash recovery twrp_image_name.imgAn important nuance for Xiaomi devices is that you can't boot right into the system after you run your Android, and if you run it properly, it will rewrite the recovery partition back to the stock partition. Immediately after you finish the firmware, press the Power and Volume Up buttons to force you to boot into TWRP.
| Parameter | Staffed Recovery | TWRP Recovery |
|---|---|---|
| ZIP installation | Only signed. | Anybody. ZIP-file |
| Access to files | No. | Full access (MTP) |
| Backup sections | Unavailable | Full backup (Backup) |
| Cleaning up Data | Total reset | Selective cleaning |
π‘
Once you log in to TWRP, go straight to the Wipe section and do Format Data (typing Yes) to unencrypt it. Without this step, the phone could go into a cyclical reboot.
Integration of Magisk to obtain Root rights
The modern standard for obtaining superuser rights is Magisk, which, unlike the old SuperSU, works system-safely without modifying the systemless root directly, which hides the presence of root rights from banking applications and Google Pay services.
For installation download the current APK-Magisk file and rename it to.zip (or just copy it) APK on the phone, if TWRP install APK). Boot in. TWRP, Select Install and specify the path to the Magisk file.
Once installed, swipe for confirmation and wait until the process is over. Then press Reboot System. Once you download Android, the Magisk icon will appear in the app menu. Open it β if the green "Installed" is on in the center of the screen, then the Root rights are active.
You can now manage permissions for applications. Any program that requires administrator rights will request confirmation through the MagiskSU pop-up. Be careful: only give access to verified software, as malware with root rights can cause irreparable damage.
Risks, warranties and detection circumvention
Obtaining superuser rights automatically voids the manufacturerβs warranty in most Xiaomi service centers. If you handle a software malfunction, you will likely be denied free repairs or required to return stock firmware.
β οΈ Attention: Open-source root partition banking applications are dangerous. Attackers can theoretically intercept input data. Always use root concealment in Magisk settings (Zygisk). + DenyList).
Many modern applications (banks, games with anticheat) are able to detect the presence of Magisk. To get around this, you need to activate Zygisk in the Magisk settings, turn on "Enforce DenyList" and add the banking applications and Google Play services to the exclusion list.
Also worth mentioning is the risk of βbrickingβ: interrupting the firmware process, using broken files, or turning off power can cause the phone to stop responding to buttons, and recovery is often only possible through a paid account of an authorized service center (Mi Auth), which makes the procedure expensive.
π‘
Having an unlocked bootloader and root rights is a constant balance between functionality and security, and the user takes responsibility for the stability of the system.
Return to stock condition
If you decide to sell the device or fix the unstable work, you can return the system to its original state. Simply removing the Magisk application is not enough, since the bootloader partition remains changed.
To do this, download the full Fastboot ROM for your model. It is important that the firmware version is the same or newer than the current one. Run the Mi Flash Tool utility, select Clear All mode, and start the firmware.
This process will completely wipe the modified recovery partition and return the original bootloader (unless you manually lock it with fastboot oem lock, but only on a fully stocked system).
Remember that locking the bootloader on custom firmware will result in a hard brick. Always return the stock firmware first, and only then lock the bootloader if it is really necessary for security.